The present invention relates to base stations, and a terminal. The primary base station execute the following steps, receiving, by a primary base station, security parameter update request information that is sent by a secondary base station and carries an encryption algorithm, wherein the security parameter update request information comprises the encryption algorithm; adding, by the primary base station, the encryption algorithm in the received security parameter update request information to reconfiguration information; sending, by the primary base station, the reconfiguration information carrying the encryption algorithm to a terminal; and receiving, by the primary base station, reconfiguration complete information sent by the terminal. Thereby, the present invention implements a reconfiguration process in a network architecture in which a primary base station is separated from a secondary base station.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A primary base station, comprising: a processor; a transmitter; and a receiver, the receiver configured to: receive security parameter update request information that carries an encryption algorithm from a secondary base station, transmit the security parameter update request information carrying the encryption algorithm to the processor, receive reconfiguration complete information sent by a terminal, wherein the security parameter update request information comprises the encryption algorithm, and receive security parameter update request cause information from the secondary base station, wherein the security parameter update request cause information comprises a count value that overflows, the count value maintained by the secondary base station; the processor configured to: receive the security parameter update request information carrying the encryption algorithm from the receiver, add the encryption algorithm in the received security parameter update request information to reconfiguration information, and transmit the reconfiguration information to the transmitter; and the transmitter configured to: receive the reconfiguration information carrying the encryption algorithm from the processor, send the reconfiguration information carrying the encryption algorithm to the terminal, and send security capability information of the terminal to the secondary base station, the security capability information of the terminal is used to determine the encryption algorithm.
A primary base station manages security parameter updates. It includes a processor, transmitter, and receiver. The receiver gets security parameter update requests, including a specific encryption algorithm, from a secondary base station. It also receives reconfiguration complete confirmation from a terminal, and cause information (specifically, an overflowed count value) from the secondary base station. The processor adds the received encryption algorithm to reconfiguration information. The transmitter sends the reconfiguration information, now containing the encryption algorithm, to the terminal, and sends the terminal's security capabilities to the secondary base station, which will then use it to choose an encryption algorithm.
2. A system comprising: a primary base station configured to: receive security parameter update request information that is sent by a secondary base station, wherein the security parameter update request information comprises an encryption algorithm, receive security parameter update request cause information, add the encryption algorithm in the received security parameter update request information to reconfiguration information, send the reconfiguration information carrying the encryption algorithm to a terminal, and receive reconfiguration complete information sent by the terminal, and send security capability information of the terminal to the secondary base station; and wherein the secondary base station is configured to: determine an encryption algorithm used by the secondary base station and the terminal, send security parameter update request information to the primary base station, wherein the security parameter update request information comprises the encryption algorithm, receive the security capability information of the terminal, and determine the encryption algorithm according to the security capability information of the terminal, send security parameter update request cause information to the primary base station, wherein the security parameter update request cause information comprises that a count value maintained by the secondary base station overflows, and communicate with the terminal by using an updated key, the updated key is updated based on the encryption algorithm.
A wireless communication system updates security parameters between a secondary base station and a terminal via a primary base station. The primary base station receives security parameter update requests (including a specific encryption algorithm) and cause information (specifically, an overflowed count value) from the secondary base station. It then adds the encryption algorithm to reconfiguration information, sends it to the terminal, receives confirmation from the terminal, and relays security capabilities from the terminal to the secondary base station. The secondary base station chooses the encryption algorithm, sends the request to the primary base station, receives the terminal security capabilities from the primary base station to help with choosing, and updates its key used for communication with the terminal using the chosen encryption algorithm.
3. The primary base station according to claim 1 , wherein the encryption algorithm in the reconfiguration information is used to update a key of the terminal.
The primary base station described earlier updates security keys on the terminal. Specifically, the encryption algorithm included within the reconfiguration information sent by the primary base station to the terminal is used by the terminal to update its communication key. This key update ensures secure communication between the terminal and the secondary base station, according to the selected encryption algorithm.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
November 19, 2015
August 15, 2017
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.